Age | Commit message (Collapse) | Author | |
---|---|---|---|
2002-01-23 | Use always '.' in the end of the fatal() message. Consistency is good. | Mike Pechkin | |
millert@ ok. | |||
2002-01-23 | don't use \n in reply(). | Mike Pechkin | |
millert@ ok | |||
2002-01-23 | ``pathname'' can be NULL here too. | Mike Pechkin | |
millert@ ok | |||
2002-01-17 | reject SIZE request for ascii mode if file is larger than 10k. | Jun-ichiro itojun Hagino | |
2002-01-10 | print proper host name for the proxy's peer; bob ok | Michael Shalayeff | |
2002-01-08 | Close potential memory leak wrt "fromname"; inspired by similar FreeBSD | Todd C. Miller | |
changes. | |||
2002-01-08 | STRING is never NULL so there is no need to test it for NULL before | Todd C. Miller | |
freeing it. | |||
2002-01-07 | While I'm here (next issue): | Mike Pechkin | |
o) __progname; o) remove #define LOG_DAEMON; o) use openlog() before syslog(); o) write $version to stderr; millert@ ok | |||
2002-01-07 | o) int -> {uid,gid}_t; %d -> %u; | Mike Pechkin | |
o) int -> pid_t; deraadt@ ok | |||
2002-01-07 | To disable a SIGCHLD signal handler use SIG_DFL, *not* SIG_IGN | Todd C. Miller | |
which now has a different meaning. | |||
2002-01-07 | To disable a SIGCHLD signal handler use SIG_DFL, *not* SIG_IGN | Todd C. Miller | |
which now has a different meaning. | |||
2002-01-06 | Don't let root change it's password via login_l?chpass(8). | Todd C. Miller | |
At some point in the future, passwd(1) may call these auth methods at which time we will need a flag to allow root to do a password change and also to allow account w/o a password to be given one. | |||
2001-12-30 | setup stdout & stderr; marius@alchemy.franken.de | Theo de Raadt | |
2001-12-28 | Fix memory leak with EPRT command; Hiroyuki YAMAMORI | Todd C. Miller | |
2001-12-18 | Don't use sigprocmask() in signal handlers when we can just set the | Todd C. Miller | |
mask to be what we want with sigaction. Pointed out by Yar Tikhiy. | |||
2001-12-17 | Add missing sigaction() call from last commit | Todd C. Miller | |
2001-12-14 | RFC 959 wasn't clear about what happens around a PASV reply, and in | Bob Beck | |
fact RFC 1123 does say that it may not contain parenthesis, and you just have to look at the end of the line. Tholo managed to find a TOPS20 ftp server (toad.xkl.com) that doesn't put parens around the reply - This fixes it so it will handle either case. | |||
2001-12-09 | Do not use stdio functions after a successfull call to daemon(), use | Miod Vallat | |
syslog() instead. ok millert@ | |||
2001-12-07 | Kill longjmp by not restarting system calls on receipt of SIGALRM. | Todd C. Miller | |
We can then just check the flag to see that the alarm ran out. | |||
2001-12-07 | kill more registers; | Mike Pechkin | |
millert@ ok | |||
2001-12-07 | Block keyboard-generated signals during database accesses. | Todd C. Miller | |
2001-12-07 | mark longjmp race | Theo de Raadt | |
2001-12-07 | Catch SIGINT, SIGQUIT and SIGTSTP but ignore during the database | Todd C. Miller | |
update. We have to be careful and drop our lock if we are suspended and then regain the lock on resume. This is necessary because the user must not be allowed to keep a record locked for a long period of time to avoid a DoS. We must be sure to re-lock when we resume because otherwise an attacker could suspend us until a user starts to login and then resume and then race the user for login using the challenge response from the user. | |||
2001-12-07 | o Use writev() to send status on the backchannel instead of fdopen()ing | Todd C. Miller | |
fd 3 and using stdio. o Add SIGINT/SIGQUIT signal handler for yp_chpass() now that getpass() is interuptible. o Block SIGINT/SIGQUIT in krb_chpass() until it is made to clean up after itself properly. | |||
2001-12-07 | Use writev() to send status on the backchannel instead of fdopen()ing | Todd C. Miller | |
fd 3 and using stdio. | |||
2001-12-06 | Do not set handler for SIGINT and SIGQUIT to SIG_IGN since it prevents | Todd C. Miller | |
getpass()/readpassphrase() from being able to restore the tty mode on keyboard interrupt. Along with the recent readpassphrase.c commit this means that if you ^C things that use login scripts (like su(1)) with a non-CBREAK shell your tty mode will be restored nicely. TODO: The various login scripts need to install handlers to avoid leaving turd files or otherwise ending in a bad state. It would also be nice to send BI_REJECT to the back channel. | |||
2001-12-06 | comment typo, and $OpenBSD$ (thanks pval) | Bob Beck | |
2001-12-06 | Fix realloc in getline so we exit on failure - in this context it's silly | Bob Beck | |
to try to continue and hold on to the same memory if we can't get memory to hold a control command. log and fail instead. (absurdity spotted by theo) | |||
2001-12-06 | use .Nm more | Theo de Raadt | |
2001-12-06 | don't use "you" in a man page. | Bob Beck | |
2001-12-06 | *** empty log message *** | Bob Beck | |
2001-12-05 | typo | Daniel Hartmeier | |
2001-12-05 | Explain that filter rules need to let pass connections to the proxy ports | Daniel Hartmeier | |
in, why this is so, and how it's done. | |||
2001-12-04 | Kill setjmp/longjmp | Todd C. Miller | |
o fix error recovery in the parser so there is no longer a need for jmping o make SIGURG handler interupt syscalls and just set a flag that we test for later. Use waitpid() not wait3() for portability. Restart waitpid() loop if another signal interrupts us. Calling dologout() from signal handlers is safe because it doesn't use stdio, nor do the two functions it calls (logout and ftpdlogwtmp). | |||
2001-12-03 | Ignore leading whitespace in commands. From Frank Denis. Closes PR 2226. | Daniel Hartmeier | |
2001-12-03 | Remove the last line, pf does support IPv6 now. | Daniel Hartmeier | |
From Dries Schellekens. Closes PR 2221. | |||
2001-12-01 | Use pidfile() instead of doing the equivalent thing by hand, and sometimes | Miod Vallat | |
forgetting to unlink the pid file at exit. ok millert@ deraadt@ | |||
2001-12-01 | fix fd_set overflow | Theo de Raadt | |
2001-11-27 | When copying command line arguments to out new argument vector, | Todd C. Miller | |
don't go past the end of the buffer. Not a security issue since root controls the fingerd arguments. Noticed by Brian Poole. | |||
2001-11-27 | Use strlcat() when adding to 'make_arg' via the -m flag to avoid | Todd C. Miller | |
overflowing. Closes PR 2201. | |||
2001-11-22 | since 3.0 ftpd allow users w/o password. Spotted by form@. | Mike Pechkin | |
millert@ ok | |||
2001-11-20 | bye bye, libdl | Peter Valchev | |
2001-11-19 | remove the signal handler races and longjmps, and then do a bit of KNF | Theo de Raadt | |
2001-11-19 | clean & KNF | Theo de Raadt | |
2001-11-18 | create own svc_run(), which can do updating outside of a signal handler | Theo de Raadt | |
2001-11-18 | blow away unused XIDLE signal race crap | Theo de Raadt | |
2001-11-18 | Ensure SA_RESTART is not set on SIGALRM. With it set, the SIGALRM is not | Theo de Raadt | |
seen after a successful recv(). This affects some other programs too.. but turning off SA_RESTART requires SIGNIFICANT analysis -- not for the faint of heart. | |||
2001-11-17 | volatile sig_atomic_t | Theo de Raadt | |
2001-11-13 | o) fix bogus .Xr usage; | Mike Pechkin | |
o) start new sentence on a new line; o) don't use .Xr instead of .Pa tag; o) minimal -mdoc design fixes; millert@ ok; | |||
2001-11-07 | use -lrpcsvc | Theo de Raadt | |